Dynamic port configuration of network equipment

ABSTRACT

The invention provides an arrangement and a method with dynamic port configuration of network equipment ( 20 ) for communication in a broadband network ( 10 ). A central managing database ( 26 ) in connection with a Dynamic Host Configuration Protocol server ( 24 ) is keeping templates with recordings of network equipment parameters for their physical port ( 21 ) settings and deployed services. Hence, enabling dynamic updating of port settings by conveying parameter recordings from the Dynamic Host Configuration Protocol server ( 24 ). The parameter settings are updated in the intermediate means ( 20 ).

TECHNICAL FIELD

[0001] The present invention pertains to an arrangement and a method fordynamic port configuration of network equipment for communication in abroadband network, specifically through the DHCP protocol server and inaccordance with the present invention a central managing database.

BACKGROUND ART

[0002] During the past few years, broadband networks have grownsteadily. A number of network elements, typically routers, switches,DSLAM (Digital Subscriber Line Access Multiplexer) and other types ofequipment are utilized to provide broadband services.

[0003] Traditional dial-up services consist of a smaller number ofcentrally placed modem servers that an end-user or client/customerapplies the telephone system to dial into. But with broadband networks,the equipment connecting the end-user has to be located much closer tothe actual location of the end-user. This location is, for example,typically in the basement of an apartment building, or in a locationwithin a few hundred meters of single-homes.

[0004] Each network element typically connects from 10 to 100 end-usersat most. And this naturally means that there will be numerous networkelements in any fairly large sized broadband network. This introduces anumber of problems, like:

[0005] The huge number of network elements should have similarconfiguration to make the administration of equipment easier.

[0006] The network elements require man-resources for administration anddeployment.

[0007] End-users have different demands for quality and functionality,which leads to special configuration for some users.

[0008] Limitations in how network elements are maintained makesintroduction of new services requiring additional configurationcumbersome.

[0009] These problems often lead to a lot of resources being spent onmaintaining and adjusting network element configuration to cope withdemands from customers. These problems are more readily understoodthrough an example.

[0010] Assuming a network with 100,000 customers and network-elementswith a typical port-density of 24 ports. If each customer is assignedone port there will be just over 4000 network elements in such anetwork.

[0011] Hereby, offering an Internet access service with two choices forconnection speed (500 kbit/s and 2000 kbit/s) where the connection speedis configured on the port connecting to the customer. Off the shelfnetwork equipment today requires that a network operator logs intonetwork equipment, enters configuration mode and sets the port speed towhatever a customer has ordered. This naturally implies that whencustomers upgrade, downgrade, subscribe or unsubscribe from the serviceport configuration on the 4000 network elements, they have to beconstantly updated. A port cannot be open unless there is an activesubscriber, and the port must not be set to a port speed higher thanwhat the subscriber is paying for.

[0012] If other services, requiring yet other configuration parameters,are available in the network, the complexity grows even more. When acustomer calls in to order a service, the port where the customer isconnected has to be identified. The appropriate configuration for theservice has to be designed and then applied in the network. Configuringa specific network element has to be accomplished manually by a person.It is frequently a requirement of a network operator to maintain as fewstandardized configuration templates as possible to simplify the task ofnetwork administration.

[0013] Prior art provides that an end-user has to make a phone call tothe broadband operator, and verbally ask for a new parameter setting.Thereby, the operator manually through, for example, a PC has tore-program the router in question for this new request changing theparameter settings for an end-user PC port. It is thus easily understoodhow huge workloads the operator staff can encounter, especially forend-users whose demands for dynamic parameter settings are frequent, andwith regard to the possibility of having, as an example, 100 000end-users in their broadband network.

[0014] Applying a customer specific configuration for each customerquickly grows out of proportion when it comes to keeping records aboutwho got which configuration for what reason. This means that theintroduction of new services or exceptions to the existing services cancause problems.

[0015] Several problems are thus issued, such as:

[0016] Customer identification; where in the network is the customerlocated?

[0017] Configuration template identification; the configuration templatefor the service the customer subscribes to has to be identified.

[0018] Configuration template adjustment; the template typically has afew parameters that have to be adjusted such as e.g. customer networkaddress, port speed settings, etc.

[0019] Configuration deployment; the network element connecting thecustomer has to receive new configuration parameters.

SUMMARY OF THE DESCRIBED INVENTION

[0020] An aim of the present invention is to solve problems mentionedand others related to configuration of network equipment in a broadbandnetwork. For this purposes the present invention sets forth anarrangement for dynamic port configuration of network equipment forcommunication in a broadband network. It thus comprises:

[0021] a network intermediate means connecting end-user equipment,having a MAC address, to the network through ports:

[0022] a means for activating a DHCP relay agent in the intermediatemeans;

[0023] a filter in the intermediate means filtering by capturing allbroadcasted packets from end-user equipment to a DHCP server, packetsfrom a network DHCP server and relay agent packets;

[0024] in the intermediate means the relay agent deploying remote-id andcircuit-id relay options adding information to the packet about a uniqueMAC address of the end-user equipment and physical port where the packetis received, thus enabling the network DHCP server to uniquely identify,through the relay agent and port-id, to which intermediate means theend-user equipment is connected;

[0025] a central managing database reachable through the intermediatemeans and in connection with the DHCP server keeping templates withrecordings of end-user service parameters for intermediate means portsettings, thus enabling dynamic updating of port settings by conveyingthe parameter recordings from the database through a protocol means,recognizing the address to the intermediate means through a relay agentpacket to the intermediate means and updating the parameter settings.

[0026] In one embodiment it is provided that the intermediate meansfilter masquerades the DHCP server address when capturing packets byreplacing it with the intermediate means address when communicating withend-user equipment, enabling the intermediate means to take the role ofthe DHCP server in responding to DHCP renewals even if the central DHCPserver does not respond thereby increasing service availability.

[0027] Another embodiment enables the intermediate means to conceal thetrue DHCP server address, which increases network security, as the DHCPserver becomes less exposed.

[0028] A further embodiment provides that a DHCP snooping featureenables the intermediate means capturing a packet, whereby optionscontained in the DHCP packet can be replaced by the intermediate meansfilter for the purpose of upholding a communication with the DHCP serverby ensuring that the remote-id/circuit-id are actually delivered to theDHCP-server.

[0029] A still further embodiment provides that the original packetbefore being replaced is stored, thus when receiving a reply from theDHCP server, the intermediate means reinstalling original options beforeforwarding the reply to the end-user equipment.

[0030] Yet a further embodiment provides that the central managementdatabase is able to policy decisions including at least the following ofthem:

[0031] if an address is granted at all at this time; and

[0032] if configuration parameters should be installed in some othernetwork element as a result of an end-user address request. Suchconfiguration parameters, in one embodiment are at least one of thefollowing:

[0033] packet filters;

[0034] rate-limiting;

[0035] packet priority processing; and access control to multicastgroups.

[0036] A further embodiment provides that information about an assignedIP address, learned through the DHCP, enables the intermediate means toinject a host route to the assigned address into its routing table.Thus, the host route can be announced by IGP (Interior Gateway Protocol)or EGP (Exterior Gateway Protocol) protocols to other routers, enablingthem to learn a specific route to a local destination.

[0037] Yet a still further embodiment comprises that the parametersettings are enabling or disabling configuration at a specificdate/time.

[0038] Yet another embodiment provides that the recordings in themanagement database record billing, security and other services thathave been deployed to a customer at any given time.

[0039] A further embodiment comprises that the recordings determine theconnection speed to the network at any given time.

[0040] Another embodiment comprises that an end-user equipment connectsto the central managing database through an end-user interface to thetemplates in order to change parameter settings.

[0041] Furthermore, the present invention sets forth a method fordynamic port configuration of end-user equipment for communication in abroadband network. It thus comprises the steps of:

[0042] connecting end-user equipment, having a MAC address, through anetwork operator intermediate means having ports;

[0043] activating a DHCP relay agent residing in the intermediate means;

[0044] filtering in the intermediate means by capturing all broadcastedpackets from end-user equipment to a DHCP server, packets from a networkDHCP server and relay agent packets;

[0045] deploying in the intermediate means through the relay agentremote-id and circuit-id relay options adding information to the packetabout a unique MAC address of the end-user equipment and physical portwhere the packet is received, thus enabling the network DHCP server touniquely identify, through the relay agent and port-id, to whichintermediate means the end-user equipment is connected;

[0046] keeping templates through a central managing database, reachablethrough the intermediate means in connection with the DHCP server, withrecordings of intermediate means parameters for their physical portsettings and deployed services, thus enabling dynamic updating of portsettings by conveying the parameter recordings from the database througha protocol means, recognizing the address to the intermediate meansthrough a relay agent packet to the intermediate means and updating theparameter settings.

[0047] Further method steps are set forth in the attached set ofdependent method claims, which adhere to the mentioned embodiments ofthe present invention.

BRIEF DESCRIPTION OF THE DRAWINGS

[0048] Henceforth reference is had to the following description taken inconjunction with the accompanying drawing, together with given examplesand embodiments for a better understanding of the present invention, inwhich the single FIGURE:

[0049] FIGURE schematically illustrates an end-user connecting to abroadband network in accordance with the present invention.

TABLES

[0050] The following tables are attached and found at the end of thepresent description, in which:

[0051] Table 1 depicts the DHCP message format and its fielddescriptors; and

[0052] Table 2 depicts the definition of its field descriptors.

DETAILED DESCRIPTION OF PREFERRED EMBODIMENTS

[0053] In order to be able to communicate using the Internet Protocol ahost has to have a set of parameters. This includes an unique IPaddress, a subnet mask of the subnet to which the host is connected, adefault-gateway for communication outside the local subnet andoptionally a name server address for translation between Internet names(www.packetfront.com) and the corresponding IP address of a host. TheDynamic Host Configuration Protocol (DHCP) allows this configurationinformation to be assigned to a host at startup. An alternative is tohave the configuration statically configured on the host.

[0054] The primary advantage of dynamically configuring these parametersis a simplified network administration, if renumbering is necessary theconfiguration is accomplished on the DHCP server and the host has toreboot to obtain new parameters, and thus a more efficient use ofaddress space is accomplished. A host returns the address whendisconnecting from the network meaning that the address immediatelybecomes available for assignment to another host.

[0055] DHCP consists of two components a protocol for deliveringhost-specific configuration parameters from a DHCP server to a host anda mechanism for allocation of network addresses to hosts. In addition tothe basic configuration parameters described above, DHCP may alsodeliver additional configuration information to the host. One feature ofthe protocol is the use of a DHCP relay agent. A relay agent is asoftware program, for example, residing in a router, which supplementsinformation in a DHCP packet and sends the packet from, for example, arouter to the DHCP server.

[0056] In accordance with the present invention, the relay agentsupplements information about remote-id and circuit-id before a packetis forwarded to the DHCP server. By utilizing the relay agent it ispossible to centralize the DHCP server operation so that each physicalsubnet does not have to contain its own DHCP server. DHCP is built on aclient-server model, where designated DHCP servers allocate networkaddresses and deliver configuration parameters to dynamically configuredhosts. DHCP is working on the network layer in the OSI model.

[0057] The present information regarding DHCP has been collected fromrelevant DHCP RFC documents (Request For Comment documents). RFC is forthe development of TCP/IP standards and controlled by the InternetEngineering Task Force (IETF).

[0058] There are three mechanisms for IP address allocation supported byDHCP:

[0059] Automatic allocation—A permanent IP address is assigned to theend-user by DHCP.

[0060] Dynamic allocation—An IP address with a limited lease time isassigned to the end-user.

[0061] Manual allocation—Allows a network administrator to assign aspecific IP address to the end-user.

[0062] The format of DHCP messages is based on the format of BOOTPmessages, to capture the BOOTP relay agent behavior which allowsinteroperability of existing BOOTP clients with DHCP servers. UtilizingBOOTP relay agents eliminates the necessity of having a DHCP server oneach physical network segment. The Bootstrap Protocol (BOOTP) isexplained in RFC951, Bootstrap Protocol. W. J. Croft, J. Gilmore. Sep.01, 1985. Further information about the BOOTP can be extracted fromupdates by RFC1395, RFC1497, RFC1532, RFC1542. RFC documents can beretrieved from http://www.rfc-editor.org.

[0063] The attached Table 1 depicts the DHCP message format, and thefield descriptors are depicted through Table 2, both found at the end ofthe present description as described in RFC2131.

[0064] For a more detailed description regarding the DHCP message formatit is referred to RFC 2131—Dynamic Host Configuration Protocol.

[0065] In the interaction between an end-user and the DHCP server thefollowing messages are used:

[0066] DHCPDISCOVER—Client broadcast to locate available servers.

[0067] DHCPOFFER—Server to client in response to DHCPDISCOVER with offerof configuration parameters.

[0068] DHCPREQUEST—Client message to servers either

[0069] (a) requesting offered parameters from one server and implicitlydeclining offers from all others,

[0070] (b) confirming correctness of previously allocated address after,e.g., system reboot, or

[0071] (c) extending the lease on a particular network address.

[0072] DHCPACK—Server to client with configuration parameters, includingcommitted network address.

[0073] DHCPNAK—Server to client indicating client's notion of networkaddress is incorrect (e.g., client has moved to new subnet) or client'slease has expired

[0074] DHCPDECLINE—Client to server indicating network address isalready in use.

[0075] DHCPRELEASE—Client to server relinquishing network address andcancelling remaining lease.

[0076] DHCPINFORM—Client to server, asking only for local configurationparameters; client already has externally configured network address.

[0077] The following is an example of a common prior art communicationbetween an end-user (Host A) and a DHCP server. Host A DHCP serverDHCPDISCOVER ----→ Broadcast Unicast

---- DHCPOFFER DHCPREQUEST ----→ Broadcast Unicast

---- DHCPACK

[0078] If more than one DHCP server is responding on an end-users DHCPdiscover packet, due to multiple DHCP server configuration, the clientcan request either one of the DHCP offers by answering with a DHCPrequest. But usually the client requests the IP address from the firstDHCP offer packet that it receives.

[0079] Just because a DHCP server is offering an IP address to anend-user it is not assured that the client receives that address. Theserver could have offered the same IP address to more than one client,but usually the server reserves the offered IP address until the clienthas had a chance to respond.

[0080] If a server and client are on different physical subnets the DHCPrequests and replies have to be relayed. Relay agents tamper with theheader in the incoming DHCP request, changing the gateway IP addressfield, before forwarding the packet out on another interface towards theDHCP server. The DHCP Relay Agent information is available through RFC3046 DHCP Relay Agent Information Option. M. Patrick. January 2001.

[0081] If a relay agent receives a packet with the gateway IP addressfield (within the header) containing 0.0.0.0, it is the closest relayagent to the client.

[0082] The DHCP relay agent is a DHCP option which has two sub-options:

[0083] Agent Circuit ID sub-option

[0084] Agent Remote ID sub-option

[0085] This sub-option may be added by DHCP relay agents, whichterminate switched or permanent circuits. It encodes an agent-localidentifier of the circuit from which a DHCP client-to-server packet wasreceived. Agents in relaying DHCP responses back to the proper circuitintend it for use. Possible uses of this field include:

[0086] Router interface number

[0087] Switching Hub port number

[0088] Remote Access Server port number

[0089] Frame Relay DLCI

[0090] ATM virtual circuit number

[0091] Cable Data virtual circuit number

[0092] Servers may use the Circuit ID for IP and other parameterassignment policies. The Circuit ID should be considered an opaquevalue, with policies based on exact string match only; that is, theCircuit ID should not be internally parsed by the server. An opaquevalue is defined by that it should be left as it is, i.e., not bemodified by an intermediate system.

[0093] The DHCP server should report the Agent Circuit ID value ofcurrent leases in statistical reports including its ManagementInformation Base (MIB) and it logs. Since the Circuit ID is local onlyto a particular relay agent, a circuit ID should be qualified with thegiaddr value, see tables, which identifies the relay agent.

[0094] This sub-option may be added by DHCP relay agents which terminateswitched or permanent circuits and have mechanisms to identify theremote host end of the circuit. The Remote ID field may be used toencode, for instance:

[0095] a “caller ID” telephone number for dial-up connection

[0096] a “user name” prompted for by a Remote Access Server

[0097] a remote caller ATM address

[0098] a “modem ID” of a cable data modem

[0099] the remote IP address of a point-to-point link

[0100] a remote X.25 address for X.25 connections

[0101] The remote ID has to be globally unique.

[0102] DHCP servers may use this option to select parameters specific toparticular users, hosts, or subscriber modems. The option should beconsidered an opaque value, with policies based on exact string matchonly; that is, the option should not be internally parsed by the server.The relay agent may use this field in addition to or instead of theAgent Circuit ID field to select the circuit on which to forward theDHCP reply (e.g., Offer, Ack, or Nak). DHCP servers should report thisvalue in any reports or MIBs associated with a particular client.

[0103] The solution in accordance with the present invention providesthat DHCP is used to deliver configuration information to the end-user(customers, clients) equipment (PC, host etc.) through an intermediatemeans, such as a router, switch or the like, parameter settings. Theinvention extends the use of remote-id and circuit-id options added tothe DHCP packets to include identification of configuration parametersto be installed in an intermediate device (router or switch), thusenabling the network equipment connecting the end-user to the network tobe dynamically configured with the service parameters required toprovide the end-user with its selected service whenever the end-userconnects its host to the network.

[0104] For a more comprehensive understanding of the presentdescription, the network element or intermediate means connecting theend-user/client is referred to as an Access Switch Router (ASR) but thepresent invention itself is not limited only to such a device.

[0105] The attached single FIGURE schematically illustrates a trafficpath in a network 10 arrangement in accordance with the presentinvention. It depicts typical equipment e.g. a PC 12, TV-set 14,telephone 16 connected to a residential broadband network 10. A doublepointed arrow indicates the direction of signaling and data traffic. Inthis example with three devices 12, 14, 16 connected to one end-userequipment port, a switch 18 directs data traffic to an ASR 20.

[0106] Moreover, the residential network 10 has a connection (not shown)to other networks such as Internet 22. Further depicted in the FIGURE isthe DHCP server 24, which is in connection with a central managementdatabase 26, in accordance with the present invention, storing templateswith records containing parameter settings for end-user equipment portsin the ASR 20.

[0107] In the following, one embodiment in accordance with the presentinvention, involving the PC 12 requesting an IP address, is describedwith reference to the attached FIGURE. Single broken line arrows withreference numerals indicate the steps taken in order to receive an IPaddress and a correct ASR 20 parameter setting in accordance with thepresent invention.

[0108] Client/end-user/customer requests 100 an IP address through hisPC 12 by broadcasting the request (DHCP). An ASR 20 filter in accordancewith the present invention captures/snoops/intercepts it. The ASR 20filter DHCP relay options identifies 110 the end-user equipmentMAC-address and port-id 12 and conveys the IP address request to theDHCP server 24. Hence in accordance with the present invention, the DHCPserver 24 is connected to a central management database 26, storingtemplates with parameter settings for the ASR 20 port connecting to theend-user. Parameters can be of the type which services are requested bythe end-user, broadband connection speeds e.g. 500 kbit/sek or 2000kbit/sek, time periods settings for different services, for exampledifferent connection speeds related to day and night communication etc.

[0109] The filter in accordance with the present invention resides inthe ASR or other equipment making up an intermediate means, whereby itmonitors all traffic to and from it and captures all packets from theUDP port 68 and/or to the UDP port 67 (UDP, User Datagram Protocol).These ports are defined as standards in DHCP.

[0110] Prior art provides that the end-user has to make a phone call tothe broadband operator, and verbally ask for a new parameter setting.Thereby, the operator manually through, for example, a PC has tore-program the ASR 20 for this new request changing the parametersettings for the end-user PC 12 port. It is thus easily understood howhuge workloads the operator staff can encounter, especially forend-users whose demands for dynamic parameter settings are frequent, andwith regard to the possibility of having, as an example, 100,000end-users in their broadband network.

[0111] The DHCP server 24 checks the central management database 26 fora template with parameter settings that match the specific end-user andits equipment 12, 14, 16, and the database 26 locates the end-usersservices. After completing the match, the database returns informationto the DHCP server 24, which responds to the end-user equipment (PC 12).When the ASR 20 intercepts the DHCP offer to the client, it contacts thecentral database 26 through a suitable protocol such as COPS (CommonOpen Policy Server) and/or FTP (File Transfer Protocol) to requestconfiguration for the end-user port. The database sends a dynamicconfiguration to the ASR 20 and its filter, whereby the port settingsfor the end-user equipment 12 is set in accordance with the dynamicconfiguration of the present invention. The PC 12 now having an IPaddress and parameter settings as once requested through the template inthe database 26 and establishes communication, for example with theInternet 22.

[0112] The database 26 templates can be changed or updated on end-userpreferences whenever wanted, for example, by accessing the database 26and bring about the template on the PC 12 screen and fill out a templateform for new settings. This end-user database communication can takeplace through the Internet.

[0113] One embodiment of the present invention sets forth an arrangementfor dynamic port configuration of network equipment for communication ina broadband network. The arrangement comprises a network intermediatemeans 20, for example, an ASR connecting end-user equipment 12, 14, 16,which has a MAC address, to the network through ports 21. It alsocomprises a means for activating a DHCP relay agent in the intermediatemeans, and a filter in the intermediate means filtering all broadcastedpackets from end-user equipment to a network DHCP server and/or viceversa by capturing them.

[0114] In the intermediate means 20, the relay agent deploys remote-idand circuit-id relay options adding information about a unique MACaddress of the end-user equipment and physical port, where the packet isreceived, to the packet. Hence, enabling the network DHCP server touniquely identify, through the port-id, where the end-user equipment issituated in the network.

[0115] Furthermore it comprises a central managing database 26 reachablethrough the end-user equipment 12, 14, 16 and in connection with theDHCP server keeping templates with recordings of end-user equipmentparameters for their physical port settings and deployed services. Thisenables dynamic updating of port settings by conveying the parameterrecordings from the database 26 through a protocol means, recognizingthe address to the intermediate means through the relay agent packet, tothe intermediate means 20.

[0116] In the solution in accordance with the present invention, the ASRfilters all User Datagram Protocol packets (UDP packets), as mentioned,are destined for UDP port 67 and 68. This allows the ASR to capture—orsnoop—all DHCP packets between the end-user and the central DHCP server.The ASR is designed to work as a relay agent using the remote-id andcircuit-id relay agent options to add information about the uniqueethernet MAC-address of the source and physical port (interface) wherethe DHCP packet was received. This enables the central DHCP server touniquly identify the end-user. The port-id is unique in the networkbecause only that port exist on only one ASR. The MAC address is worldunique, but if forged, it is still unique on that particular port.

[0117] By additional features in the DHCP snooping algorithm and thecentral DHCP server system in accordance with the present invention, itis possible to address other issues of updating network elementconfiguration with customer specific parameters based on configurationtemplates stored at a central location 26. Such a configuration templatemay be unique for a single customer, or may be used to provide a commonservice to a great number of customers.

[0118] Important for this solution is that the configuration template isadministrated in one central system and deployed into the network bycomputer control at the moment when the customer connects to the network(by requesting a network address).

[0119] The solution as a whole thereby solves the issues of uniquelyidentifying the customer, the customer location in the network, theconfiguration to be applied, the modifications to that configurationnecessary for the individual customer and the deployment of theconfiguration to the appropriate network element(s) in the network.

[0120] In addition to standard relay agent operation, with relay agentoptions as described, the ASR DHCP snooping enables the followingfeatures.

[0121] It enables a feature, which accomplishes it to masquerade theDHCP server address and replace it with the ASR address in thecommunication with the end-user. This enables the ASR to take the roleof the DHCP server in responding to DHCP renewals even if the centralDHCP server does not respond thereby increasing service availability. Itfurther enables the ASR 20 to conceal the true DHCP server address whichincrease network security as that system becomes less exposed.

[0122] The information about an assigned IP addresses enables the ASR 20to inject a host route to the assigned address into its routing table.This host route can then be announced by IGP or EGP protocols to otherrouters, enabling them to learn a specific route to the localdestination. IGP and EGP are Internet protocols for exchanging routinginformation within and between autonomous systems.

[0123] If there are one or multiple forwarder(s) between the requestingend-user and the ASR, the DHCP snooping feature will still enable theASR to intercept the packet. Any options contained in the DHCP packetcan be replaced by the ASR for the purpose of upholding a communicationwith the DHCP server by securing that the remote-id/circuit-id areactually delivered to the DHCP-server. When the reply is received theASR can reinstall the original options (kept from the original packet)before forwarding the reply to the end-user.

[0124] This feature is particularly useful, but not limited to, when therelay agent option is already present in the DHCP packet from theend-user. An intermediate device may have added the informationwith-or-without purpose, but the ASR feature intervenes and ensures thatthe correct circuit-id and remote-id information is sent to the DHCPserver.

[0125] The central management system is also able to make a number ofpolicy decisions including but not limited to the following:

[0126] If address is granted at all at this time.

[0127] If configuration parameters should be installed in some othernetwork element as a result of this end-user address request.

[0128] Such configuration parameters can be, but are not limited to thefollowing:

[0129] Packet filters.

[0130] Rate-limiting.

[0131] Packet priority processing.

[0132] Other configuration parameters such as access control tomulticast groups (i.e. controlling which multicast groups the particularend-user on the particular port is allowed to join)

[0133] By maintaining information about assigned addresses in thedatabase, the central management system can, based on this knowledge,dynamically reconfigure network elements in a timely fashion asrequired, for instance, enabling or disenabling configuration at aspecific date/time. It also enables the network management system tokeep track of, for billing, security and other purposes, which servicesthat have been deployed to which customer at any given time.

[0134] Although the advantages of the present invention have beendescribed through given examples and embodiments, it is not limited tothose. The attached set of claims provides further embodiments for aperson skilled in the art. TABLE 1

[0135] TABLE 2 FIELD DESCRIPTION Op Message opcode/message type 1 -BOOTREQUEST, 2 - BOOTREPLY Htype Hardware address type, se ARP sectionin “Assigned Numbers” RFC; (e.g. ‘1’= 10 mb Ethernet) Hlen Hardwareaddress length (e.g. ‘6’ for 10 mb Ethernet) Hops Client sets to zero,optionally used by relay agents when booting via a relay agent. XidTransaction ID, a random number chosen by the client, used by the clientand server to associate messages and responses between them. Secs Set bythe client; Seconds elapsed since client began address acquisition orrenewal process. Flags Flags (not shown) Ciaddr Client IP address; onlyfilled in if client is in BOUND, RENEW or BINDING state and can respondto ARP request. Yiaddr ‘Your’ (client) IP address Siaddr IP address ofnext server to use in bootstrap; returned in DHCPOFFER and DHCPACK byserver. Giaddr Relay agent IP address, used in booting via a relayagent. Chadder Client hardware address Sname Optional server host name,NULL terminated string File Boot file name, null terminated string;“generic” name or NULL in DHCPDISCOVER, fully qualified directory pathname in DHCPOFFER Options Optional parameters field.

1. An arrangement for dynamic port configuration of network equipment(20) for communication in a broadband network (10), characterized inthat it comprises: a network operator intermediate means (20) connectingend-user equipment (12, 14, 16), having a Media Access Control address,to the network through ports (21); a means for activating a Dynamic HostConfiguration Protocol relay agent in said intermediate means (20); afilter in the intermediate means filtering by capturing all broadcastedpackets from end-user equipment (12, 14, 16) to a DHCP server, packetsfrom a network DHCP server (24) and relay agent packets; in saidintermediate means said relay agent deploying remote-id and circuit-idrelay options adding information to the packet about a unique MediaAccess Control address of the end-user equipment (12, 14, 16) andphysical port (21) where the packet is received, thus enabling thenetwork Dynamic Host Configuration Protocol server (24) to uniquelyidentify, through a relay agent packet and port-id, where theintermediate means resides in the network (10) and thus the end-userequipment (12, 14, 16); a central managing database (26) in connectionwith the Dynamic Host Configuration Protocol server (24), reachablethrough said intermediate means, keeping templates with recordings ofnetwork equipment parameters for their physical port (21) settings anddeployed services, thus enabling dynamic updating of port settings byconveying said parameter recordings from said database (26) through aprotocol means, recognizing the address to the intermediate meansthrough a relay agent packet to said intermediate means (20) andupdating the parameter settings.
 2. An arrangement according to claim 1,characterized in that the intermediate means (20) filter masquerades theDynamic Host Configuration Protocol server (24) address when capturingpackets by replacing it with the intermediate means address whencommunicating with the intermediate means (20), enabling theintermediate means (20) to take the role of the Dynamic HostConfiguration Protocol server in responding to Dynamic HostConfiguration Protocol renewals even if the central Dynamic HostConfiguration Protocol server does not respond, thereby increasingservice availability.
 3. An arrangement according to claim 2,characterized in that it enables the intermediate means to conceal thetrue Dynamic Host Configuration Protocol server address which increasesnetwork security as the Dynamic Host Configuration Protocol serverbecomes less exposed.
 4. An arrangement according to claims 1-3,characterized in that a Dynamic Host Configuration Protocol snoopingfeature enables the intermediate means capturing a packet, wherebyoptions contained in the Dynamic Host Configuration Protocol packet canbe replaced by the intermediate means filter for the purpose ofcommunication with the Dynamic Host Configuration Protocol server.
 5. Anarrangement according to claim 4, characterized in that the originalpacket before being replaced is stored, thus when receiving a reply fromthe Dynamic Host Configuration Protocol server, the intermediate meansreinstalling original options before forwarding the reply to theend-user equipment.
 6. An arrangement according to claims 1-5,characterized in that the central management database is able to policydecisions including at least the following: if an address is granted atall at this time; and if configuration parameters should be installed insome other network element as a result of an end-user address request.7. An arrangement according to claim 6, characterized in that suchconfiguration parameters are at least one of the following: packetfilters; rate-limiting; packet priority processing; and access controlto multicast groups.
 8. An arrangement according to claims 1-7,characterized in that information about an assigned IP address, throughthe Dynamic Host Configuration Protocol enables the intermediate meansto inject a host route to the assigned address into its routing table,whereby the host route can be announced by Interior Gateway Protocol orExterior Gateway Protocol protocols to other routers, enabling them tolearn a specific route to a local destination.
 9. An arrangementaccording to claims 1-8, characterized in that the parameter settingsare enabling or disabling configuration at a specific date/time.
 10. Anarrangement according to claims 1-9, characterized in that saidrecordings in said management database record billing, security andother services that have been deployed to a customer at any given time.11. An arrangement according to claims 1-10, characterized in that theconnection speed to the network at any given time is determined by saidrecordings.
 12. An arrangement according to claims 1-11, characterizedin that an end-user equipment connects to said central managing databasethrough an end-user interface to said templates in order to changeparameter settings.
 13. A method for dynamic port configuration ofnetwork equipment for communication in a broadband network (10),characterized in that it comprises the steps of: connecting end-userequipment (12, 14, 16) through a network operator intermediate means(20), having a Media Access Control address, to the network (10) throughports (21); activating a Dynamic Host Configuration Protocol relay agentin said intermediate means (20); filtering in the intermediate means bycapturing all broadcasted packets from end-user equipment (12, 14, 16)to a DHCP server, packets from a network DHCP server (24) and relayagent packets; deploying in said intermediate means (20) through saidrelay agent remote-id and circuit-id relay options adding information tothe packet about a unique Media Access Control address of the end-userequipment (12, 14, 16) and physical port (21) where the packet isreceived, thus enabling the network Dynamic Host Configuration Protocolserver (24) to uniquely identify, through the relay agent and port-id,where the intermediate means resides in the network (10) and thus theend-user equipment (12, 14, 16); keeping templates through a centralmanaging database (26), reachable through said intermediate means (20)in connection with the Dynamic Host Configuration Protocol server (24),with recordings of network equipment parameters for their physical portsettings and deployed services, thus enabling dynamic updating of portsettings by conveying said parameter recordings from said databasethrough a protocol means, recognizing the address to the intermediatemeans (20) through the relay agent packet to said intermediate meansupdating the parameter settings.
 14. A method according to claim 13,characterized in that the intermediate means (20) filter masquerades theDynamic Host Configuration Protocol server (24) address when capturingpackets by replacing it with the intermediate means address whencommunicating with the intermediate means (20), enabling theintermediate means to take the role of the Dynamic Host ConfigurationProtocol server in responding to Dynamic Host Configuration Protocolrenewals even if the central Dynamic Host Configuration Protocol serverdoes not respond, thereby increasing service availability.
 15. A methodaccording to claim 14, characterized in that it enables the intermediatemeans to conceal the true Dynamic Host Configuration Protocol serveraddress which increases network security as the Dynamic HostConfiguration Protocol server becomes less exposed.
 16. A methodaccording to claims 13-15, characterized in that a Dynamic HostConfiguration Protocol snooping feature enables the intermediate meanscapturing a packet, whereby options contained in the Dynamic HostConfiguration Protocol packet can be replaced by the intermediate meansfilter for the purpose of communication with the Dynamic HostConfiguration Protocol server.
 17. A method according to claim 16,characterized in that the original packet before being replaced isstored, thus when receiving a reply from the Dynamic Host ConfigurationProtocol server, the intermediate means reinstalling original optionsbefore forwarding the reply to the end-user equipment.
 18. A methodaccording to claims 13-17, characterized in that the central managementdatabase is able to policy decisions including at least the following:if an address is granted at all at this time; and if configurationparameters should be installed in some other network element as a resultof an end-user address request.
 19. A method according to claim 18,characterized in that such configuration parameters are at least one ofthe following: packet filters; rate-limiting; packet priorityprocessing; and access control to multicast groups.
 20. A methodaccording to claims 13-19, characterized in that information about anassigned IP address, through the Dynamic Host Configuration Protocolenables the intermediate means to inject a host route to the assignedaddress into its routing table, whereby the host route can be announcedby Interior Gateway Protocol or Exterior Gateway Protocol protocols toother routers, enabling them to learn a specific route to a localdestination.
 21. A method according to claims 13-20, characterized inthat the parameter settings are enabling or disabling configuration at aspecific dates/time.
 22. A method according to claims 13-21,characterized in that said recordings in said management database recordbilling, security and other services that have been deployed to acustomer at any given time.
 23. A method according to claims 13-22,characterized in that the connection speed to the network at any giventime is determined by said recordings.
 24. A method according to claims13-23, characterized in that an end-user equipment connects to saidcentral managing database through an end-user interface to saidtemplates in order to change parameter settings.